GeneralInformation

Hostnames	investiere.ch
Domains	investiere.ch
Country	Switzerland
City	Genève
Organization	Exoscale Open Cloud GV2
ISP	Akenes SA
ASN	AS61098

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 500

624915576 | 2024-05-04T02:51:21.143792

22 / tcp

SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.8
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDgrLjd2UEvy3WbttrOSxkgvuBR9BQPecB+1E9NTpCz8Ean
HvkhKj4ZOe/yV4yz4f2kE34h2CBwjeoIgM3KTL3aEmRHYE1Xkln0jLb5qzFmBAa2kZA/1xPFnxyv
IboMZAVUf3M2THcZnMBjYBvFe3WhDMH0/BT9rXI9MTWyJE6q91P0ZUH56QFpWAnA4Ya5AHDS5H9u
ilXFRIPDaYKsDLul4xxczvFNFu3YfvXzU3zOn7ePGkDgxcBJDqji99SeafDb7vyAm2eJ+H7dIJ7Z
bIdVr+l7Itlpi+0AFi9mtVdxC6jz9MULBDxXyE++MX3g+R/wFRfevUF3//z1FZ/3c8Kx
Fingerprint: 36:b2:59:91:60:b8:a1:18:c9:ce:0a:12:86:26:f0:84

Kex Algorithms:
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	ssh-rsa
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-1533018674 | 2024-04-30T14:01:57.067675

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.19.2
Date: Tue, 30 Apr 2024 14:01:56 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://www.startupjobs.ch/jobs

752972932 | 2024-05-04T20:30:27.771065

443 / tcp

HTTP/1.1 500 Internal Server Error
Server: nginx/1.19.2
Date: Sat, 04 May 2024 20:30:27 GMT
Content-Type: text/html
Content-Length: 579
Connection: close

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            10:8e:aa:28:44:69:f8:56:b0:a4:0b:05:da:83:e5:88
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
        Validity
            Not Before: Feb 12 00:00:00 2024 GMT
            Not After : Feb 23 23:59:59 2025 GMT
        Subject: CN=*.investiere.ch
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:8e:23:9f:52:6e:5a:bd:22:6c:14:9c:92:aa:22:
                    60:df:38:f9:46:ea:48:f3:3e:a8:bc:70:44:97:dd:
                    e3:07:e6:05:16:ef:b9:27:87:27:d0:a0:06:47:b8:
                    c8:f8:04:19:31:b6:89:eb:42:e2:9e:e9:35:8d:bf:
                    5e:98:c4:6f:70:d1:b9:57:95:a6:f5:cc:08:d4:fd:
                    e9:f3:c1:cb:24:c5:93:dc:e3:46:23:55:bf:b1:8f:
                    04:8d:7f:b7:59:88:41:6a:3d:d2:7d:58:d6:12:7d:
                    84:b4:af:bb:15:c1:31:41:18:26:c4:93:ab:33:d1:
                    f7:03:8b:7f:0d:a3:23:32:ce:8c:66:b7:54:86:a3:
                    2a:1d:a5:65:e6:8d:ed:ef:c4:0f:61:9d:43:c9:0d:
                    ed:fb:23:ab:62:41:7b:71:96:28:1d:cd:e6:56:21:
                    1d:23:fd:d7:4d:ff:e9:e2:ca:2d:18:73:5e:34:5d:
                    79:ed:7c:ce:03:52:ce:8b:da:9e:c2:ff:18:c7:b8:
                    0e:ba:39:38:9d:30:59:14:2f:45:4b:51:11:88:94:
                    b3:8b:4d:7e:79:70:70:65:de:61:c0:bc:37:d8:49:
                    c2:cb:f7:20:c3:1c:f5:d8:11:13:29:89:ba:15:2a:
                    56:5a:a6:df:9a:5d:93:53:97:3f:c1:8f:ca:dd:94:
                    d5:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
            X509v3 Subject Key Identifier: 
                3C:50:E8:39:E2:5D:78:0D:E3:16:B7:5E:13:90:87:57:1A:4B:8C:8F
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.7
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
                OCSP - URI:http://ocsp.sectigo.com
            X509v3 Subject Alternative Name: 
                DNS:*.investiere.ch, DNS:investiere.ch
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Feb 12 07:45:12.193 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:A3:69:E7:61:E2:BD:73:9F:F1:26:AD:
                                E9:1B:8A:CD:87:40:F0:92:96:C8:58:A9:17:C1:77:6E:
                                E2:FA:01:9B:22:02:20:60:25:FD:4F:EB:5F:14:03:F5:
                                DE:73:EF:D3:C4:5A:98:BA:F7:24:C3:EE:BD:8B:99:73:
                                FB:57:B4:34:4B:E8:24
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Feb 12 07:45:12.260 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:A6:64:BC:21:96:5B:44:F8:68:8D:D9:
                                D1:16:2C:C4:4D:14:86:C6:60:EA:1A:C9:C3:B0:C7:1D:
                                ED:A2:38:49:18:02:20:5B:76:7C:47:C0:79:60:A2:CF:
                                92:75:BE:AE:D4:19:B4:6F:B6:70:33:3F:96:26:1F:96:
                                32:1F:99:1C:30:67:7D
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Feb 12 07:45:12.235 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:69:A1:14:0A:78:33:E2:CF:35:C3:66:68:
                                A5:0B:EF:5B:33:14:E8:E2:64:24:5E:56:75:4A:E4:26:
                                00:3B:70:A5:02:21:00:BD:34:86:A4:C2:46:C0:AD:04:
                                D6:13:53:21:0C:89:97:86:4B:15:53:42:90:DB:4A:B7:
                                01:D8:BF:B7:2C:7A:6F
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        b6:84:b3:6c:04:34:7b:f7:95:26:f9:7a:df:bc:26:5f:d9:a6:
        0d:04:57:9a:cd:a7:b9:92:5b:9b:69:29:5a:78:af:15:2e:fd:
        61:8e:61:69:2d:0a:b7:7a:b3:d6:a2:dc:30:19:35:50:02:7a:
        4b:e6:07:7b:b0:ee:82:82:ba:5b:3c:e3:1e:63:e4:e3:62:e3:
        0e:6f:c9:fa:3d:5c:60:53:5d:87:af:34:d9:85:c0:43:b4:10:
        86:5e:d4:87:c2:e9:23:94:a1:96:23:ab:7b:d8:d2:6d:41:d8:
        02:21:ae:b3:4a:47:8b:c0:fa:6b:58:ed:86:bc:74:f0:d5:47:
        ac:b0:82:6b:a7:61:fd:20:ca:db:23:e0:0f:eb:97:da:1e:74:
        25:2d:1d:03:b7:27:4c:93:6a:be:ed:7d:f6:0f:7e:b6:80:58:
        e8:49:bd:d7:4a:61:f9:22:ea:60:3a:c8:bb:7e:93:e1:e6:e5:
        51:06:3f:01:3a:56:5b:8a:d2:2e:a5:cf:f2:84:74:b9:f2:d6:
        40:bf:90:d9:f1:34:b7:ea:45:b6:1d:ea:ed:80:8a:39:f0:9c:
        54:80:03:2c:cb:6b:fd:d8:dd:13:3a:ef:43:09:fe:c8:8b:40:
        4a:77:85:6f:91:01:37:e1:6d:eb:4f:83:13:ef:20:23:c4:cf:
        75:51:76:c7

1217088064 | 2024-04-27T18:30:38.031267

500 / udp

VPN (IKE)

Initiator SPI: 7734686c78763971
Responder SPI: 616c367264693436
Next Payload: RESERVED
Version: 2.0
Exchange Type: DOI Specific Use
Flags:
    Encryption:     False
    Commit:         False
    Authentication: False
Message ID: 00000000
Length: 36

159.100.243.204

Last Seen: 2024-05-04

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

624915576 | 2024-05-04T02:51:21.143792
22 / tcp

OpenSSH7.2p2 Ubuntu-4ubuntu2.8

-1533018674 | 2024-04-30T14:01:57.067675
80 / tcp

nginx1.19.2

752972932 | 2024-05-04T20:30:27.771065
443 / tcp

nginx1.19.2

1217088064 | 2024-04-27T18:30:38.031267
500 / udp

Products

Pricing

Contact Us

159.100.243.204

Last Seen: 2024-05-04

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

624915576 | 2024-05-04T02:51:21.143792 22 / tcp

OpenSSH7.2p2 Ubuntu-4ubuntu2.8

-1533018674 | 2024-04-30T14:01:57.067675 80 / tcp

nginx1.19.2

752972932 | 2024-05-04T20:30:27.771065 443 / tcp

nginx1.19.2

1217088064 | 2024-04-27T18:30:38.031267 500 / udp

Products

Pricing

Contact Us

624915576 | 2024-05-04T02:51:21.143792
22 / tcp

-1533018674 | 2024-04-30T14:01:57.067675
80 / tcp

752972932 | 2024-05-04T20:30:27.771065
443 / tcp

1217088064 | 2024-04-27T18:30:38.031267
500 / udp